Try our new research platform with insights from 80,000+ expert users
DevOps Engineer at Vogel Communications Group GmbH & Co. KG
User
Has good performance optimization documentation
Pros and Cons
  • "The performance optimization documentation has improved our organization. The base setup is great but with higher bandwidth, it is really hard to find good documentation on how to tweak the setup to get the most out of your connection."
  • "Performance Optimization Documentation could use improvement. The base setup is great but with higher bandwidth, it is really hard to find good documentation on how to tweak the setup to get the most out of your connection."

What is our primary use case?

We use it as a firewall within our public cloud infrastructure. We use it in particular for IPSec, VPN, and Reverse Proxying HTTP Traffic. We have deployed multiple pfSenses and most of them are configured as HA/Failover.

We wanted to secure traffic between our main office and multiple public cloud data centers and providers. We also wanted to have access to our cloud components via VPN.

We have multiple websites that are proxied via HAProxy and secured via Let’s Encrypt TLS Certificates (generated via the ACME Plugin).

We deploy across multiple virtual data centers that are in different physical locations. Multiple teams have their own deployment. One HA / Failover cluster is the entry point to our websites so there are millions of HTTP requests per month. We also have around 20 to 30 users (Dev and Ops) who use the VPN feature. Behind the pfSense firewalls, there are around 100+ servers and no end users.

How has it helped my organization?

We replaced a Sophos UTM 9 Failover Cluster with a pfSense Failover Cluster and we can now make config and certificate changes without downtime. Also, the TLS certificates are rotated automatically.

The performance optimization documentation has improved our organization. The base setup is great but with higher bandwidth, it is really hard to find good documentation on how to tweak the setup to get the most out of your connection.

pfSense sort of gives us a single pane of glass management. We use the same product multiple times so we only need to know one product but it also does not offer a single management platform for all deployments. Whether this is good or bad depends on the point of view. On the one hand, we need to manage multiple setups, but on the other hand, we have a clear separation of concerns and risk zones (if the user account on one system is breached not all systems are affected).

What is most valuable?

It is hard to pinpoint a specific feature that is the most valuable. I think the big community is a major benefit. Most problems we encounter were already encountered and mostly solved by someone else. Most of the components are open-source tools, so the error messages have hits on Google which makes debugging easier.

pfSense has Plugins and is open source so everybody can add features or improve the product. For example, HAProxy, ACME Plugin, Prometheus-node-exporter, Nmap, etc. I see it as a relatively flexible product. If something is not working via the WebUI, SSH or WebKVM is always there.

Most of the time it is very straightforward to use a feature or plugin, the documentation is great and has examples that are very helpful. If something is a bit tricky, pfSense luckily has a big community. 

What needs improvement?

Performance Optimization Documentation could use improvement. The base setup is great but with higher bandwidth, it is really hard to find good documentation on how to tweak the setup to get the most out of your connection.

Buyer's Guide
Netgate pfSense
April 2025
Learn what your peers think about Netgate pfSense. Get advice and tips from experienced pros sharing their opinions. Updated: April 2025.
848,716 professionals have used our research since 2012.

For how long have I used the solution?

We have been using pfSense for eight years. 

What do I think about the stability of the solution?

pfSense is a very stable solution. In all the years I had around three instabilities.

What do I think about the scalability of the solution?

Two people handle the maintenance of all pfSense Firewalls.

It can be used in small to big deployments. If the bandwidth hits more than 10GBs or 20GBs you need to optimize it to get good results. I would also not recommend it in very big ISP deployments with TBs of traffic.

How are customer service and support?

I have never used the support for any technical issue. The community forums and Google always were enough.

I rate the support an eight out of ten. I had an issue with a pfSense Plus License and the support was helpful and got my problem resolved within a day.

How would you rate customer service and support?

Positive

Which solution did I use previously and why did I switch?

In one of our virtual data centers, we had a Sophos UTM 9 as failover but it had some very annoying problems (Let’s Encrypt TLS Cert generation or WAF config reloads resulted in a two-minute downtime).

How was the initial setup?

The old installation was straightforward, but the new installer has some bugs and does not really work.

What about the implementation team?

We implemented it ourselves. 

Previous deployments were done by a System Engineer and the current deployments are done by me (DevOps Engineer) and a System Engineer. It was a one-person job.

What was our ROI?

We have better uptimes and lower support costs in comparison to the Sophos firewall and we are also saving on licensing fees.

What's my experience with pricing, setup cost, and licensing?

The licensing seems fair. We owned the TAC Lite License for some time. The problem was, that the license is bound to a device ID which does not really work well with VMs where this ID changes sometimes.

We use pfSense Community Edition as our firewall within our public cloud so we only pay for the VM and the traffic.

What other advice do I have?

I would rate it an eight out of ten. It is very good but has some fields in which it can improve.

You need to have an interest in the topic and also (like any security product) it needs regular attention. But it is a reliable firewall and the combination of BSD and ZFS makes it pretty solid.

    Disclosure: I am a real user, and this review is based on my own experience and opinions.
    PeerSpot user
    Bert Rapp - PeerSpot reviewer
    IT Supervisor at a consumer goods company with 11-50 employees
    Real User
    Top 10
    It is flexible, easy to add features, and can quickly be deployed
    Pros and Cons
    • "Netgate pfSense is 100 percent flexible and configurable."
    • "The overall documentation has room for improvement."

    What is our primary use case?

    We use the Netgate pfSense firewalls for each location in the same metropolitan area.

    We implemented Netgate pfSense at the most basic level, aiming for a reliable firewall solution without incurring the high costs associated with Cisco products.

    How has it helped my organization?

    Netgate pfSense is a flexible firewall solution. It supports OpenVPN and IPsec, providing various options for establishing secure connections. Additionally, it offers features for monitoring user browsing behavior, enabling administrators to implement restrictions if desired. Overall, pfSense is a versatile platform that can be adapted to meet the needs of different network environments.

    Adding new features to pfSense is quick. We select the feature we want and click install.

    One feature that pfSense had, which my Cisco PIX firewall lacked, was built-in failover. With the Cisco PIX, if I wanted to implement failover, for instance, if one internet connection went down and I had a backup, I had to purchase additional hardware and a whole other firewall. However, with pfSense, failover configured two ports on the existing box to switch between them if one connection failed.

    The security of pfSense is excellent. It effectively prevents unauthorized access.  To date, we haven't experienced any security breaches.

    pfSense Plus provides a cold spare that helps minimize downtime. In the event of a failure, the other firewall can be activated while the broken one is restored and configured.

    We saw the value of pfSense within a few days. Some of it was instant, but other things took time. When we first implemented it, we saw some value, and a few days later, it kept impressing me with more. A week went by, and I still saw more value.

    With a firewall, VPN, and other router functionalities, pfSense offers an excellent total cost of ownership. It's a one-time purchase with no hidden fees, making it significantly more affordable than Cisco products, which require additional licensing, subscriptions, support, and per-feature purchases. While pfSense necessitates some time investment to learn and configure, this is comparable to the effort needed for any enterprise-grade solution, including Cisco, which also incurs substantial licensing costs. Overall, pfSense's upfront cost and user's time represent its total cost of ownership. 

    What is most valuable?

    Netgate pfSense is 100 percent flexible and configurable. We can do anything with it. We have not run into any scenario where it didn't work.

    What needs improvement?

    The overall documentation has room for improvement. Currently, we need to search forums for answers, as the official documentation by Netgate is not very helpful. The community support is excellent, and there should be a feedback loop to incorporate missing information from the community forums into the official documentation.

    For how long have I used the solution?

    I have been using Netgate pfSense for four years.

    What do I think about the stability of the solution?

    I would rate the stability of pfSense ten out of ten.

    What do I think about the scalability of the solution?

    The scalability of pfSense fits our company requirements.

    How are customer service and support?

    Based on both my partner's and my experience with technical support, it is excellent.

    The user community support is fantastic. It's a large and engaged community where members show genuine interest in one another's questions.

    How would you rate customer service and support?

    Positive

    Which solution did I use previously and why did I switch?

    I switched from Cisco Firewalls to pfSense Firewalls. I had a Cisco PIX, but they started implementing a subscription model where we had to pay for individual features. It was like, if we wanted this feature, it's a dollar. And if we wanted that feature, it's another dollar. I decided I was done with that approach and wanted something different. I like that with Netgate, what we buy is what we get. It's not a subscription model. We can get a support subscription, which is perfectly natural to me, but we don't have to buy or pay extra for every feature. We get what you get.

    How was the initial setup?

    It was a gradual learning experience, beginning with our initial purchase and installation of a pfSense firewall. Its features impressed us, so we decided to replace another firewall with pfSense to enable failover capabilities. This success led to a broader implementation across our network. It wasn't a planned, calculated rollout; rather, it evolved organically as we replaced outdated firewalls and discovered the benefits of pfSense, particularly its ability to work in tandem with other pfSense devices for enhanced functionality.

    The initial deployment takes a couple of hours and can be done by one person.

    What's my experience with pricing, setup cost, and licensing?

    Netgate pfSense offers good value for its price. I prioritize getting the most out of my money, so I choose pfSense. I don't always seek the cheapest or most expensive option but rather the best value for my investment. With pfSense, I get the most product for every dollar spent.

    What other advice do I have?

    I would rate Netgate pfSense ten out of ten.

    I am one of two IT people in the organization, and we are the only two who can access the pfSense firewalls. We have what will soon be four metropolitan locations that use pfSense.

    Other than updating pfSense, no other maintenance is required.

    I recommend pfSense to others. It's an awesome product that fits everything we've ever needed, and they don't overcharge for every little license feature.

    Which deployment model are you using for this solution?

    On-premises
    Disclosure: I am a real user, and this review is based on my own experience and opinions.
    Flag as inappropriate
    PeerSpot user
    Buyer's Guide
    Netgate pfSense
    April 2025
    Learn what your peers think about Netgate pfSense. Get advice and tips from experienced pros sharing their opinions. Updated: April 2025.
    848,716 professionals have used our research since 2012.
    Christos Messios - PeerSpot reviewer
    Senior IT Engineer at Channel IT
    Reseller
    Top 10
    I like the built-in blocker and the ability to easily add packages from the console
    Pros and Cons
    • "I like pfBlocker and the ability to install more packages from the pfSense console."
    • "PfSense could better utilize the interface and dashboard and include some packages in the built-in solution. For example, pfSense is sharing some other packages. You have to download and configure them within the package manager of pfSense. Some of those important ones, like the IPS and the monitor, could be installed on the solution's image and configured."

    What is our primary use case?

    We use pfSense for IT security and load balancing the internet traffic across our three lines. We also use a package available in pfSense called pfBlocker that blocks some DNS records. For example, it doesn't allow ads to appear on the website. We have a site-to-site VPN with our different sites. 

    How has it helped my organization?

    The benefits from pfSense were immediate. We tested pfSense on a third-party machine, and soon after, we purchased a Netgate machine. PfSense prevents data loss by blocking malicious sites or apps with pfBlocker and the Suricata package, which acts as an IPS. 

    PfSense has multiple WAN ports, helping to reduce downtime. We can set multiple Internet lines. If one line has an issue, we can still access the Internet from the other or communicate with the other sites. We also have a high availability feature with pfSense. For example, if we have two or three pfSense devices, we can have high availability. If one goes down, we can still work with the other one.

    The visibility that pfSense has enables us to make data-driven decisions. From the logs, we can see blocked or allowed traffic. We generally see what goes into the firewall and change the rules or configuration. 

    From the dashboard, we can see the utilization and how our lines behave during working hours. We can see if we need a higher-performance device, a line upgrade, or a feature.

    What is most valuable?

    I like pfBlocker and the ability to install more packages from the pfSense console. It's easy to add features, but you can check the user communities and videos if you encounter any difficulties. You have the flexibility to choose VPNs with WireGuard or OpenVPN and make firewall rules. It's easy to create a group with multiple IPs, hostnames, or areas and create a rule for that group.

    You can make your own configurations on every module and create custom packages, which makes it more flexible. The dashboard is customizable, so you can create your dashboard based on what you would like to see and have all the data there on the dashboard. You can start and stop everything on the dashboard. 

    What needs improvement?

    PfSense could better utilize the interface and dashboard and include some packages in the built-in solution. For example, pfSense is sharing some other packages. You have to download and configure them within the package manager of pfSense. Some of those important ones, like the IPS and the monitor, could be installed on the solution's image and configured.

    For how long have I used the solution?

    I have used pfSense for four years in business and at home.

    What do I think about the stability of the solution?

    I didn't notice any performance issues. 

    What do I think about the scalability of the solution?

    pfSense is scalable.

    How are customer service and support?

    I rate Netgate support nine out of 10. I have contacted them twice in the last six months, and they responded and resolved my issue quickly. 

    How would you rate customer service and support?

    Positive

    Which solution did I use previously and why did I switch?

    We used UniFi UDM, Hillstone, and OPNsense, which is similar to pfSense.

    How was the initial setup?

    Deploying pfSense is straightforward. It took about an hour to install and configure. After deployment, the only maintenance required is periodically checking for new updates or security fixes. 

    What's my experience with pricing, setup cost, and licensing?

    pfSense's price is excellent and similar to its competitors. It has a low total cost of ownership for all these features. 

    What other advice do I have?

    I rate Netgate pfSense eight out of 10. 

    Which deployment model are you using for this solution?

    On-premises
    Disclosure: PeerSpot contacted the reviewer to collect the review and to validate authenticity. The reviewer was referred by the vendor, but the review is not subject to editing or approval by the vendor. The reviewer's company has a business relationship with this vendor other than being a customer: Reseller
    PeerSpot user
    Systems Manager at Tillamook County
    Real User
    Top 20
    The solution has been highly flexible
    Pros and Cons
    • "PfSense was quite a bit less expensive than some other alternatives, and it's worked as well as we could hope."
    • "We're doing a lot of OpenVPN tunnels, and some of the fields in the OpenVPN setup on the server side do not lend themselves to multiple sites. It's kind of ugly. It's a big list of allowed IP addresses. I'd much rather see that via the table individually."

    What is our primary use case?

    I have three firewalls running my entire county and 11 smaller versions of the firewalls doing OpenVPN tunnels to my remote sites through StarLink. 

    What is most valuable?

    PfSense has been highly flexible, and it's worked out great for us for the most part. The Plus version has support, which we will pay for since it is our edge firewall. I have not had an issue with adding features.

    What needs improvement?

    We're doing a lot of OpenVPN tunnels, and some of the fields in the OpenVPN setup on the server side do not lend themselves to multiple sites. It's kind of ugly. It's a big list of allowed IP addresses. I'd much rather see that via the table individually. 

    The individual firewalls have a single pane of glass view, but we have so many of them. You need to log into each to manage them.

    For how long have I used the solution?

     I'm officially about two years into using pfSense and one year in production.

    What do I think about the stability of the solution?

    I have not had any crashes happen. 

    What do I think about the scalability of the solution?

    Overall, I've been happy with these firewalls.

    How are customer service and support?

    I rate Netgate support eight out of 10. They were highly responsive. It was strictly email support. I didn't buy phone support.

    Which solution did I use previously and why did I switch?

    We were running a Sophos firewall as the edge router of everything we did, and it wasn't meeting our expectations. I've used Cisco firewalls for most of my career. The Sophos firewall was underpowered and overburdened. It was constantly causing issues, such as filling up the logs and crashing the firewall in the middle of the day. I have not had that issue with the pfSense.

    How was the initial setup?

    It was harder to order them than it was to deploy them. As a county government, we ran into purchasing issues, but we ultimately managed to make it happen. It took us about three months to deploy all of them. After deployment, you need to update the firewall codes and back it up. That's pretty typical.

    What's my experience with pricing, setup cost, and licensing?

    PfSense was quite a bit less expensive than some other alternatives, and it's worked as well as we could hope. We have three 1500s and 11 of the 4100s. The total cost of ownership has been pretty beneficial.

    Which other solutions did I evaluate?

    We looked at some other options. I'm a Cisco guy, but pfSense firewalls provide more bang for your buck. 

    What other advice do I have?

    I rate Netgate pfSense eight out of 10. 

    Which deployment model are you using for this solution?

    On-premises
    Disclosure: PeerSpot contacted the reviewer to collect the review and to validate authenticity. The reviewer was referred by the vendor, but the review is not subject to editing or approval by the vendor.
    PeerSpot user
    Director of IT at Cutting Edge Hair Salon RSS
    Real User
    It's simple to set up a site-to-site VPN, and the solution is flexible enough to do just about anything
    Pros and Cons
    • "I like how easy it is to access VPNs and stuff like that. It's so simple to set up a site-to-site VPN."
    • "They could always make pfSense slightly more user-friendly and modernize the interface a little."

    What is our primary use case?

    We have a tiny business that uses pfSense to create a secure VPN between our two locations. 

    How has it helped my organization?

    It's a reliable platform. We also value pfSense's security features because we have to comply with PCI for credit card payments. We need to be confident that we'll have the security. PfSense offers that.

    We realized the benefits of pfSense almost immediately. I read about a company using it and thought it would be the most secure thing. It's a bit daunting at first because you have to configure it. However, they create ISP versions, so you can leave those alone and not configure them. This does the whole thing in one box, whereas, with the ISP thing, you have to think about how many different appliances you'll need to make it work.

    What is most valuable?

    I like how easy it is to access VPNs and stuff like that. It's so simple to set up a site-to-site VPN. The solution is flexible enough to do just about anything.  It's super easy to configure the features as long as you have the details you need, or you can build out stuff if it lacks what you're after because it has a plugin architecture.

    It depends on how you run it, but pfSense can help you prevent data loss. Still, it's more about preventing people from getting in and having the confidence that you won't be compromised. And if you need those extra features, you can always add them and all those things that can monitor what's happening in your website or organization.

    The web interface allows you to see bandwidth, how things connect, and much more. PfSense Plus prevents downtime. It has a feature that records everything you do so that if a unit fails, you can swap it out and enter your details, and then it loads your configuration on a new device. PeerSpot Plus provides visibility that enables data-driven decisions. You can set it up to do that if you want it. 

    What needs improvement?

    They could always make pfSense slightly more user-friendly and modernize the interface a little. 

    For how long have I used the solution?

    I have used pfSense since 2015, so it's been around nine years.

    What do I think about the stability of the solution?

    I've never seen pfSense crash.

    What do I think about the scalability of the solution?

    It's at the scale that I need it, but you can certainly scale it up to the enterprise level if you want to have a better product. It depends on the hardware. 

    How are customer service and support?

    I rate Netgate support 10 out of 10. I only contacted them once. It was very quick and efficient. I had a sensible solution within five minutes. I couldn't imagine having better support.

    How would you rate customer service and support?

    Positive

    Which solution did I use previously and why did I switch?

    I used some Netgear hardware, but I don't remember the model because it was eight years ago. When I switched to pfSense, I stuck with it because it works reliably. 

    How was the initial setup?

    Deploying pfSense was pretty easy. I'm an IT guy, so I did it myself. After deployment, you need to do some routine maintenance, like upgrading occasionally and checking your file logs. Apart from that, it does everything for you.

    What's my experience with pricing, setup cost, and licensing?

    They have a free community version and a paid version. The free version works if you are a home user who needs a fixed cost, but that's not my use case. 

    What other advice do I have?

    I rate Netgate pfSense 10 out of 10. I can't think of a way to make it better. Before deploying pfSense, prepare your area and your network. Understand your entire network and what you want to do before you start doing anything then follow the documentation. 

    Disclosure: PeerSpot contacted the reviewer to collect the review and to validate authenticity. The reviewer was referred by the vendor, but the review is not subject to editing or approval by the vendor.
    PeerSpot user
    Network Administrator at a healthcare company with 51-200 employees
    Real User
    It's rock solid, low maintenance, and doesn't cost too much for the features you get
    Pros and Cons
    • "My favorite thing about pfSense is its overall stability of the product. It's rock solid and low maintenance. I like that aspect. It doesn't cost much, and it's feature-rich, including mobile VPN, pfBlocker, and IPS."
    • "One area of improvement would be better communication. They kind of left a lot of people in the dark and misled them about the pfSense Plus Edition. I feel like they automatically switched people over and then followed that up with a required subscription model. That aggravated a lot of customers, including me, but I stuck with it regardless."

    What is our primary use case?

    I use pfSense as our primary firewall and router. We use several functions of pfSense, including the OpenVPN capabilities for mobile VPN and pfBlocker for DNS blocklisting. We also use Snort for IPS capabilities. 

    How has it helped my organization?

    The solution helped us secure the perimeter against vulnerabilities. I'm confident in the team's ability to keep things updated and all the security holes patched. It also has security add-ons like IDS, IPS, etc. We realized the benefits immediately.

    What is most valuable?

    My favorite thing about pfSense is its overall stability of the product. It's rock solid and low maintenance. I like that aspect. It doesn't cost much, and it's feature-rich, including mobile VPN, pfBlocker, and IPS. You have the flexibility to deploy it as bare metal or VM. 

    It's very easy to add features to pfSense and to configure them. The solution's management page offers a single pane of glass view. You can clearly see the various features on the main page, and it isn't difficult to drill down into the other sections for more details. 

    I can't say which features Plus provides that the community edition doesn't. I only knew that the Plus edition was the path forward. I was previously on a community edition for many years, but I've been on the Plus edition for at least a couple of years now.

    What needs improvement?

    One area of improvement would be better communication. They kind of left a lot of people in the dark and misled them about the pfSense Plus Edition. I feel like they automatically switched people over and then followed that up with a required subscription model. That aggravated a lot of customers, including me, but I stuck with it regardless.

    For how long have I used the solution?

    I have used pfSense for nearly a decade.

    What do I think about the stability of the solution?

    I rate pfSense 10 out of 10 for reliability. 

    What do I think about the scalability of the solution?

    pfSense is highly scalable. The only limitation is the hardware you have behind it. As long as you can upgrade your hardware when you scale, pfSense will be able to support it. 

    How are customer service and support?

    I rate pfSense support nine out of 10. I've typically gotten all the answers I sought when needed. They are highly responsive. I don't think I've ever had to wait more than an hour to get a reply. 

    How would you rate customer service and support?

    Positive

    How was the initial setup?

    I wasn't involved in deploying pfSense. I maintain an existing one. For maintenance, you just need to periodically update to the latest version of pfSense Plus and maintain the different rulesets, such as firewall, IPS, and pfBlocker rules. 

    What was our ROI?


    What's my experience with pricing, setup cost, and licensing?

    The total cost of ownership of pfSense is rather low. After the recent subscription change, it doesn't cost us more than a couple hundred bucks a year. The only other thing I have to pay for is the business Snort license for the IDaaS IPS functionality. 

    What other advice do I have?

    I rate pfSense nine out of 10. I recommend doing a white box deployment because it's easier on the hardware. I tried pfSense on a Netgate appliance and wasn't impressed with the performance compared to the white box I already had in place. I suggest starting with a spare server you have — Dell, HP, etc. 

    Which deployment model are you using for this solution?

    On-premises
    Disclosure: PeerSpot contacted the reviewer to collect the review and to validate authenticity. The reviewer was referred by the vendor, but the review is not subject to editing or approval by the vendor.
    PeerSpot user
    reviewer2509758 - PeerSpot reviewer
    Manager, Information Technology Systems at a construction company with 51-200 employees
    Real User
    Top 20
    Open-source, easy to configure, and offers helpful support services
    Pros and Cons
    • "The open-source nature of pfSense, paired with the amount of support we receive, has been great."
    • "I'd like to see it become more of a next-gen firewall or deep packet inspection, however, I'm very happy with the way it is as of now."

    What is our primary use case?

    We primarily use the solution for firewalling, site-to-site VPNs, and VPN management.

    How has it helped my organization?

    We largely needed a good firewall solution. We wanted to find a suitable firewall for our company size and what we're doing with it.

    It's open-source and everything is available to me without having to pay subscription fees. 

    What is most valuable?

    The support with NetGate probably is the most value I've seen from it. They've been really, really helpful. The open-source nature of pfSense, paired with the amount of support we receive, has been great.

    The flexibility is great. It does everything I need it to do. The amount of open apps for it is extensive. I was able to help track some networking issues using the pfSense to scan the network.

    It's significantly easier than expected to configure the solution and simple to handle add-ons.

    pfSense can help prevent data loss. In our environment, things are fairly strict. However, it makes it easy to manage and configure the firewall and handle inter-VLAN routing and firewalls between them.

    We do have access to a single pane of glass management. It's easy to review traffic, usage between VLANs, threat monitoring, and user connectivity. I'd have to monitor items separately without this single pane which would make monitoring difficult. 

    We do use pfSense Plus. It provides us with the features we need to minimize downtime. The updates and everything that comes with it have been great.

    The visibility provided allows us to make data-driven decisions. The modules I have access to for network monitoring and management have been very helpful.

    We've been able to optimize performance. With NetGate support, I've been able to utilize traffic shaping and performance optimizers. 

    What needs improvement?

    I'd like to see it become more of a next-gen firewall or deep packet inspection, however, I'm very happy with the way it is as of now. 

    For how long have I used the solution?

    I've used the solution personally for about two years. My company has been using it for about eight years now.

    What do I think about the stability of the solution?

    The stability is very good. 

    What do I think about the scalability of the solution?

    We have two locations. I have yet to uncover any scalability limitations. 

    How are customer service and support?

    Support is quick to respond. For the amount we pay a year, the support has paid for itself. I'm very happy with the level of support we get. 

    How would you rate customer service and support?

    Positive

    Which solution did I use previously and why did I switch?

    I do have experience with Meraki and NetGate devices. I've used FortiGate devices in the past. The expense and support were not near the quality of pfSense.

    How was the initial setup?

    The initial setup was easy to set up and straightforward to configure. It did take a moment to learn where each tool set was. However, after that, it's really good. I handled the deployment myself. I was able to implement it within 16 hours. 

    There isn't really any maintenance; it is pretty much set and forget. I do updates every three months or so and that's it. 

    What about the implementation team?

    90% of the setup was handled in-house; I referred to NetGate support for a few items along the way. 

    What's my experience with pricing, setup cost, and licensing?

    We do pay about $600 a year for NetGate support. pfSense is free, however, NetGate, that made the appliance, charges for a support package. I'm very happy with the quality of service that I get for the price. 

    We would have paid another $7,000/year for subscription fees if we went anywhere else.

    What other advice do I have?

    I'd recommend the solution to others. I'd rate it ten out of ten.

    Which deployment model are you using for this solution?

    On-premises
    Disclosure: PeerSpot contacted the reviewer to collect the review and to validate authenticity. The reviewer was referred by the vendor, but the review is not subject to editing or approval by the vendor.
    PeerSpot user
    Bojan Calic - PeerSpot reviewer
    Managing Director at a consultancy with 1-10 employees
    Real User
    Top 20
    We have found installation to be straightforward and appreciate the value for money
    Pros and Cons
    • "What I like most about the product is that it is simple to use."
    • "Multi-appliance monitoring and management, like a single pane of glass, would be very nice to have. A centralized management console would help us."

    What is our primary use case?

    I run a company that is a managed service provider. We supply our clients with products and purchase on their behalf. We install pfSense in their offices or main client offices.

    What is most valuable?

    What I like most about the product is that it is simple to use. I use it at home and in other locations. It offers great value for money because there are no licensing issues apart from the support package. I don't have to worry about licenses expiring or the firewall not working. The overall security gain is stable and reliable.

    What needs improvement?

    Multi-appliance monitoring and management, like a single pane of glass, would be very nice to have. A centralized management console would help us. There might be improvements to the web UI, which could benefit from a new look. It looks a little dated, although everyone knows where the options are.

    For how long have I used the solution?

    I have used the solution for four years.

    What do I think about the stability of the solution?

    The solution is stable. I'm happy with the stability, I would rate it a nine. I had some minor issues, like hardware power supply failure after two to three years, but it was rock-solid until it failed.

    What do I think about the scalability of the solution?

    The solution is pretty much scalable. I would say nine, although I'm not sure why.

    How are customer service and support?

    I used their support about two times. I don't need much support, as I've managed to fix everything by myself. I would rate it ten because they went above and beyond expectations.

    How would you rate customer service and support?

    Positive

    Which solution did I use previously and why did I switch?

    Sophos was used in some cases. Some clients require products which are used in their other offices.

    How was the initial setup?

    The initial setup takes about one hour. It is fairly simple and sometimes only takes half an hour, depending on what needs to be done.

    What about the implementation team?

    We implemented it in-house with one person.

    What was our ROI?

    Because we are familiar with the product, the ROI is between ten to twenty percent. We have been saving by having a stable, well-known product.

    What's my experience with pricing, setup cost, and licensing?

    I estimate it to be between four or five, something like that. I cannot say it is cheap, but it is not expensive either, so let's say three or four.

    What other advice do I have?

    I usually advise having a solid firewall with a low cost of ownership, which is why I rate it nine. There's room for improvement, as I would love to have more control over the packets. Overall, I would rate the product nine out of ten.

    Which deployment model are you using for this solution?

    On-premises
    Disclosure: PeerSpot contacted the reviewer to collect the review and to validate authenticity. The reviewer was referred by the vendor, but the review is not subject to editing or approval by the vendor.
    Flag as inappropriate
    PeerSpot user
    Buyer's Guide
    Download our free Netgate pfSense Report and get advice and tips from experienced pros sharing their opinions.
    Updated: April 2025
    Product Categories
    Firewalls
    Buyer's Guide
    Download our free Netgate pfSense Report and get advice and tips from experienced pros sharing their opinions.